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Doe ription 

This invention relates to the controlling of access to 
restricted access data. 

With the ver growing use f el ctronic communi- 
cation systems, it is necessary to ensure that only au- 
thorised users obtain access to restricted access data. 
For example, a computer may be accessible via the pub- 
lie telephone network by having a modem that links up, 
via the telephone network, with the modem of a user 
Normally, the decision as to whether to permit access 
to any restricted access data in the computer is deter- 
mined by whether the user transmits, via the modems, 
an approved access code or identity code to the com- 
puter. Such a system is known from Patent Abstracts of 
Japan, vol. 12, no. 138 (P-695) (2985) (NEC Corpora- 
tion). However, so-called "hackers' are able by detailed 
knowledge of existing systems or by persistent guessing 
of possible identity codes to gain access to restricted 
access data in computers. 

Accordingly, there is the need for an arrangement 
in which the "hacker" is unaware that he is being vetted 
as to whether or not he is entitled to access to the re- 
stricted access data. Alternatively, if the a hacker D is 
aware that he is being vetted, he must be unable to work 
out how to circumvent the security features. 

According to a first aspect of the present invention, 
a method of enabling a first apparatus to determine 
whether or not a second apparatus should be permitted 
access to restricted access data comprises the step of: 

the first and second apparatuses performing joint 
negotiations to ensure technical compatibility for 
subsequent data transmission between them- 
selves; 

characterized in that the method further comprises 
the steps of: 

the first apparatus monitoring the negotiations to 
detect whether, within the negotiations, there is a 
first indication originating from the second appara- 
tus that the first apparatus recognises as indicating 
that the second apparatus is entitled to access to 
the restricted access data; and 
the first apparatus responding, if it detects the first 
indication, by permitting the second apparatus to 
gain access to the restricted access data when data 
transmission starts after the negotiations have been 
completed. 

If , for example, the first and second apparatuses are 
answer and call modems respectively, then the negoti- 
ations may be the start-up procedure that modems au- 
tomatically perform without any active participation by 
the user whose personal computer, for example, is con- 
nected to the call modem. Because the user is vetted 
automatically during the start-up procedure, the us r is 
not aware that his security status is b ing checked. 
Start-up procedure negotiations are illustrat d in Figure 



4/V.32 f the CCITT Recommendation V. 32 relating to 
"A family f 2-wire, duplex modems operating at data 
signalling rates of up t 9600bit/sf ruse n the general 
switched telephone network and on leas d telephone- 
5 typ circuits". Whilst som of the start-up procedure is 
precisely determined by the V.32 Recommendation, 
there are certain parts of the procedure where the exact 
format of the signals is not precisely laid down. It is dur- 
ing such parts of the procedure that the first indication 
may be included in the start-up negotiations. 

Because the first indication may be included within 
existing standard modem procedures, such as the start- 
up procedure, the present invention may be made com- 
patible with existing modem arrangements. 

As it is possible that the first indication might be in- 
cluded in the negotiations by the second apparatus 
purely by chance, it is preferable that the method further 
includes the steps of: 

the first apparatus including a second indication in 
the negotiations; 

the second apparatus monitoring the negotiations 
to detect whether, within the negotiations, there is 
the second indication; and 
the second apparatus including the first indication 
in the negotiations only if the second apparatus has 
already detected the second indication. 

Because the first indication is generated in re- 
sponse to the second indication, it is less likely that the 
second indication will be included in the negotiations 
purely by chance compared with the arrangement 
where the first apparatus merely monitors for the pres- 
ence of the first indication without having triggered the 
generation of the first indication by itself producing the 
second indication. Thus, an extra element of security is 
included. 

It is envisaged that the first indication may, for ex- 
ample, identify the second apparatus as belonging to a 
group of apparatuses which are permitted access to the 
restricted access data. For example, the first indication 
may inform the first apparatus that the second appara- 
tus is an authorised piece of apparatus belonging to 
company X. However, the first apparatus does not know 
exactly which of the possibly many authorised pieces of 
apparatuses belonging to company X the particular sec- 
ond apparatus it is communicating with happens to be. 
Thus, it is preferable that the method further includes 
the step of the second apparatus including a third indi- 
cation in the negotiations after it has included the first 
indication in the negotiations. The third indication may 
therefore be used to identify more precisely or even 
uniquely the second apparatus. For example, the third 
indication could identify the second apparatus as being 
the piece of apparatus in the Accounts Department with- 
in company X. This gives an xtra piece of knowledge 
to the first apparatus which was previously only aware, 
by virtue of th first indication, that the second apparatus 
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was one of the many auth rised apparatuses belonging 
to company X. 

According to a s cond aspect of the present inven- 
tion, a communication system comprises: 

a first apparatus for controlling access to restricted 
access data; and 
a second apparatus; 

the first and second apparatuses including respec- 
tive means for performing joint negotiations to 
ensure technical compatibility for subsequent data 
transmission between the first and second appara- 
tuses; 

characterized in that: 

the second apparatus further includes means for 
including in the negotiations a first indication indi- 
cating that the second apparatus is entitled to 
access to the restricted access data; and 
the first apparatus further includes means for mon- 
itoring the negotiations to detect the first indication 
and means for responding to the detection of the 
first indication by permitting the second apparatus 
to gain access to the restricted access data when 
data transmission starts after the negotiations have 
been completed. 

Preferably, the first apparatus further includes 
means for including in the negotiations a second indica- 
tion, and the second apparatus further includes means 
for monitoring the negotiations to detect the second in- 
dication and means for activating the first indication in- 
clusion means in response to the detection of the sec- 
ond indication. 

Preferably, the second apparatus further includes 
means for including in the negotiations a third indication 
after the first indication. 

The invention will now be described by way of non- 
limiting example with reference to the accompanying 
drawings in which:- 

Figure 1 is a diagram illustrating a 16-point signal 
structure with non-redundant coding for 9600 bit/s 
and subset A.B.C.Dof states used at 4800 bit/s and 
for training; and 

Figure 2 is a diagram illustrating the start-up proce- 
dure negotiations between modems prior to the 
transmission of data between the modems. 

Figures 1 and 2 describe an example of the inven- 
tion in the context of modem to modem communications 
as described in CCITT Recommendation V32. A full ex- 
planation regarding signal states A.B.C.D as shown in 
Figure 1 is given in section 2.4 of Recommendation V 
32. 

Also a full explanation regarding the start-up proce- 
dure negotiations is given in section 5 ('Operating Pro- 
cedures") of Recommendation V.32. 

Referral should be made to Recommendation V.32 



in order to achieve a full understanding 1 the known 
start-up procedure specification. 

H wever, in rder t assist understanding of Figur 
2, ther is reproduced b tow a tab! identifying the na- 
5 tur of th individual segments identified in Figure 2. 
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TRN 



Answer tone in accordance with CCITT 
Recommendation V.25. 
Signal states AC AC AC for an even 
number of symbol intervals T; similarly 
with CA.AA and CC. 
Round-trip delays observed from an- 
swer and call modems respectively, in- 
cluding 64T±2T modem turn round de- 
lay. 

Signal states ABAB..AB, CDCD..CD. 
Scrambled ones at 4600 bit/s with dibits 
encoded directly to states A, B, C and D 
as defined in section 5.2, c) of CCITT 
20 Recommendation V.32. 

R1 , R2, R3 Each a repeated 16-bit rate sequence at 
4800 bit/s scrambled and differentially 
encoded as in Table 1 of CCITT Recom- 
mendation V.32. 
25 E A single 16-bit sequence marking and 

following the end of a whole number of 
16-bit rate sequences in R2 and R3. 
B1 Binary ones scrambled and encoded as 

for the subsequent transmission of data. 
30 ECTS Optional special echo canceller training 

sequence. 

This example of the present invention relies on the 
fact that Recommendation V.32 does not specify pre- 
ss cisely all features of the negotiations labelled 1 in Figure 
2 that occur prior to data transmission 2. The negotia- 
tions 1 comprise the start-up procedure between the call 
and answer modems. 

The negotiations 1 include segments 31 and 32 of 
40 a type called TRN which serve to train the adaptive 
equaliser in the receiving modem and the echo canceller 
in the transmitting modem. As may be seen from Figure 
2, recommendation V32 specifies that the TRN seg- 
ments must be greater than or equal to 1260 symbol 
<5 intervals T. A symbol interval T is the interval associated 
with one of the signal states A,B,C or D as shown in 
Figure 1 . Also, Recommendation V.32 only specifies the 
nature of the first 256 symbols. There is therefore lee- 
way as to exactly which symbols are selected to be the 
50 257th symbol onwards and exactly how many symbols 
there should be, subject to the requirement that the total 
number of symbols associated with segment TRN is 
greater than or equal to 1260. 

Thus, an indication may be given by choosing the 
55 total number of symbols to be a precise number, for ex- 
ample. 2036 symbols. 

Thus, TRN segment 32 may be carefully arranged 
to provide the first indication' of the pr sent invention. 
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TRN segment 32 has to b present in accordance with 
Recomm ndation V.32 but it is by choosing its parame- 
ters within the possibilities allowed by the Recommen- 
dation that it may be made to serv the purpose of th 
first indication 0 . This may be don by. as mentioned 
above, arranging for TRN segment 32 to have a precise 
symbol length. Alternatively, because the symbols from 
the 257th symbol onwards are unspecified, it may be 
arranged that within the TRN segment 32, after the 
257th symbol, there is a predetermined code of the sym- 
bols A.B.C.D which the answer modem identifies as be- 
ing the first indication 0 . Such a predetermined code of 
symbols may be likened to a gene contained within a 
chromosome. 

Including such a code in TRN segment 32 will re- 
quire the scrambler in the call modem to be returned to 
a known condition consistent with the state of the de- 
scrambler in the answer modem. Scramble r/descram- 
blers are discussed in section 4 of Recommendation V. 
32. 

Prior to the "first indication 0 being included in the 
start-up procedure negotiations by the call modem by 
customizing the characteristics of the TRN segment 32, 
the answer modem produces its own customized TRN 
segment 31 , which serves as a "second indication 0 . The 
call modem monitors for the presence of the customized 
TRN segment 31 and only produces its own customized 
TRN segment 32 if it detects the presence of customized 
TRN segment 31 . If the TRN segment 31 is not correctly 
customized (i.e. no "second indication" is present), then 
the call modem will produce a TRN segment 32 that 
does not contain the first indication", e.g. by giving the 
segment a length of 2500 symbols or ensuring that it 
does not contain the predetermined code of the symbols 
A,B,C,D. 

The customized TRN segment 31 may therefore be 
likened to a "nod" that is produced by the answer mo- 
dem and which triggers off the production of a °wink° by 
the call modem in the form of the customized TRN seg- 
ment 32. 

The customized TRN segment 32 may in practice 
be capable of being produced by a large number of mo- 
dems and thus, when the answer modem receives the 
customized TRN segment 32, it is unable to identify pre- 
cisely which modem it is connected to. 

Therefore, the call modem produces a "third indica- 
tion" that is used to identify precisely which modem it is. 
The f hird indication" is produced by the call modem af- 
ter it has produced the "first indication". If the first indi- 
cation" is in the form of a predetermined code of signal 
states A.B.CD embedded within TRN segment 32, then 
the f hird indication" may also comprise a predeter- 
mined code of signal states A,B,C,D appearing in the 
TRN segment 32, but after the first indication". 

In the context of modems, it is envisaged that the 
present invention may be implemented by modifying 
standard modems that ar in accordance with Recom- 
mendation V.32. These modems, because they remain 



in accordant with Recommendation V 32, are capable 
of working n rmalry without providing a security check- 
ing function. How ver, in order to achieve such a secu- 
rity function, the modems will contain additional circuitry 
s over and above that required t satisfy Recomm nda- 
tion V.32 so as to to provide the first, second and third 
indications and to respond thereto. Thus, additional cir- 
cuitry in the answer modem will, upon detecting the first 
indication, produce a response (e.g. a signal) which per- 
*0 mits the data transmission 2 subsequent to the start-up 
procedure negotiations 1 to involve the restricted ac- 
cess data. In simple terms, the signal produced by the 
answer modem may, for example, activate a switch so 
that a computer database accessed via the answer mo- 
dem permits the, for example, personal computer con- 
nected to the call modem to have access only to non- 
restricted data if the signal produced in response to the 
first indication is not present, but to have access to the 
restricted access data if the signal produced in response 
to the first indication is present. 

It is to be understood that the present invention is 
not restricted to implementation in the context of mo* 
dems. For example, a pair of computers might be con- 
nected by dedicated telephone lines and it is desirable 
that, every time they communicate with one another, 
they check that they are indeed authorised to pass re- 
stricted access data between themselves. Thus, there 
may be hardware or software within the computers 
which, during the negotiations involved prior to data 
transmission, effect the incorporation and detection of 
at least the first indication in the negotations in order to 
ensure security. 

The third indication, instead of being included within 
the TRN segment 32, could, for example, be incorporat- 
ed within additional negotiations which are not shown in 
Figure 2. For example, after the start-up procedure ne- 
gotiations 1, there could be additional negotiations as- 
sociated with error correction and/or data compression 
which occur after the start-up procedure negotiations 1 
but before data transmission 2. The third indication 
could therefore be incorporated in the error correction 
and/or data compression negotiations. 



Claims 

1 . A method of enabling a first apparatus to determine 
whether or not a second apparatus should be per- 
mitted access to restricted access data, the method 
comprising the step of: 

the first and second apparatuses performing 
joint negotiations (1) to ensure technical com- 
patibility for subsequent data transmission (2) 
between themselves; 

characterized in that the method further com- 
prises the steps of: 

the first apparatus monitoring the negotiations 
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(1) to detect whether, within the negotiations, 
there is a first indication (32) originating from 
the second apparatus that the first apparatus 
recognises as indicating that the second appa- 
ratus is entitled to acc ss t the restricted 
access data; and 

the first apparatus responding, if it detects the 
first indication (32), by permitting the second 
apparatus to gain access to the restricted 
access data when data transmission (2) starts 
after the negotiations (1 ) have been completed. 

2. A method according to claim 1 , further including the 
steps of: 

the first apparatus including a second indica- 
tion (31) in the negotiations (1); 
the second apparatus monitoring the negotia- 
tions (1) to detect whether, within the negotia- 
tions, there is the second indication (31); and 
the second apparatus including the first indica- 
tion (32) in the negotiations only if the second 
apparatus has already detected the second 
indication (31). 

3. A method according to claim 1 or claim 2, further 
including the step of the second apparatus including 
a third indication in the negotiations (1) after it has 
included the first indication (32) in the negotiations. 

4. A method according to claim 3, wherein the first indi- 
cation (32) identifies the second apparatus as 
belonging to a group of apparatuses which are enti- 
tled to access to the restricted access data and the 
third indication identifies the second apparatus 
more precisely than the first indication. 

5. A method according to any one of claims 1 to 4, 
wherein the first and second apparatuses are 
answer and call modems respectively. 

6. A method according to any one of claims 1 to 5. 
wherein the first apparatus responds, if it does not 
detect the first indication (32) within the negotia- 
tions, by permitting the second apparatus to gain 
access only to non-restricted data when data trans- 
mission (2) starts after the negotiations (1) have 
been completed. 

7. A communication system comprising: 

a first apparatus for controlling access to 
restricted access data; and 
a second apparatus; 

the first and second apparatuses including 
respective means for pert rming joint negotia- 
tions (1) to ensure technical compatibility for 
subsequent data transmission (2) between th 



first and second apparatuses; 
characteriz din that: 

the second apparatus further includes means 
for including in th negotiations (1 ) a first indi- 
5 cation (32) indicating that the second apparatus 

is entitled to access to the restricted access 
data; and 

the first apparatus further includes means for 
monitoring the negotiations (1) to detect the 

io first indication (32) and means for responding 

to the detection of the first indication (32) by 
permitting the second apparatus to gain access 
to the restricted access data when data trans- 
mission (2) starts after the negotiations (1) 

is have been completed. 

8. A communication system according to claim 7, 
wherein the first apparatus further includes means 
for including in the negotiations (1) a second indi- 
te cation (31), and the second apparatus further 

includes means for monitoring the negotiations (1) 
to detect the second indication (31 ) and means for 
activating the first indication inclusion means in 
response to the detection of the second indication 

2S (31). 

9. A communication system according to claim 7 or 
claim 8, wherein the second apparatus further 
includes means for including in the negotiations (1 ) 

30 a third indication after the first indication (32). 

10. A communication system according to claim 9, 
wherein the first indication inclusion means and the 
third indication inclusion means are arranged so 

35 that the first indication (32) identifies the second 
apparatus as belonging to a group of apparatuses 
which are entitled to access to the restricted access 
data and the third indication identifies the second 
apparatus more precisely than the first indication. 

40 

11. A communication system according to any one of 
claims 7 to 10, wherein the first and second appa- 
ratuses are answer and call modems respectively. 

45 12. A communication system according to any one of 
claims 7 to 11, wherein the first apparatus further 
includes means for responding to the absence of 
detection of the first indication (32) within the nego- 
tiations by permitting the second apparatus to gain 

so access only to non-restricted data when data trans- 
mission (2) starts after the negotiations (1) have 
been completed. 



55 Patentanspruche 

1. Verfahren, welches eine erste Vbrrichtung in die 
Lage versetzt festzulegen, ob eine zweite Vorrich- 



5 



9 



EP 0 494 607 B1 



10 



tung Zugriff zu Daten mit Zugriffsbeschrankung 
haben soil Oder nicht, wobei das V rfahren die 
Schritte autweist: 

daB die ersten und zwerten V rrichtungen 
gemeinsame Abstimmungen (1 ) durchf uhren, 
urn die technische Kompatibilitat fur die tol- 
gende Daten ubertragung (2) zwischen ihnen 
sicherzustellen, 

d&durch gokennzoichnet, daB das Verfahren 
weiterhin die Schritte autweist, daB 
die erste Vorrichtung die Abstimmungen (1) 
uberwacht urn zu erfassen, ob es innerhalb der 
Abstimmungen eine erste Anzeige (32) gibt, 
welches von der zweiten Vorrichtung herruhrt 
und welches die erste Vorrichtung als Anzeige 
dafOr erkennt, daB die zweite Vbrrichtung 
berechtigt ist, aut die Daten mit Zugangsbe- 
schrankung zuzugreifen, und 
die erste Vorrichtung, falls sie das erste 
Anzeige (32) erfaBt, dadurch reagiert, daB sie 
der zweiten Vorrichtung den Zugang zu den 
Daten mit Zugangsbeschrankung gewahrt, 
wenn die Daten ubertragung (2) beginnt, nach- 
dem die Abstimmungen (1) abgeschlossen 
sind. 

2. Verfahren nach Anspruch 1, welches weiterhin die 
Schritte autweist, daB 

die erste Vorrichtung eine zweite Anzeige (31 ) 
in die Abstimmungen (1 ) einschlieBt, 
die zweite Vorrichtung die Abstimmungen (1) 
uberwacht, urn festzustellen, ob innerhalb der 
Abstimmungen die zweite Anzeige (31) vor- 
iiegt, und 

die zweite Vorrichtung die erste Anzeige (32) in 
die Abstimmungen nur dann einschlieBt, wenn 
die zweite Vorrichtung schon die zweite 
Anzeige (31) erfaBt hat 

3. Verfahren nach Anspruch 1 Oder 2, welches weiter- 
hin den Schritt einschlieBt. daB die zweite Vorrich- 
tung eine dritte Anzeige in die Abstimmungen (1) 
einschlieBt, nachdem sie die erste Anzeige (32) in 
die Abstimmungen eingeschlossen hat. 

4. Verfahren nach Anspruch 3, wobei die erste 
Anzeige (32) die zweite Vorrichtung als zughorig zu 
einer Gruppe von Vorrichtungen indentifiziert, wel- 
che eine Zugangsberechtigung zu den Daten mit 
Zugangsbeschrankung haben und daB die dritte 
Anzeige die zweite Vorrichtung genauer kennzeich- 
net als die erste Anzeige. 

5. Verfahren nach einem der Anspruche 1 bis 4, wobei 
die ersten und zweiten Vorrichtungen Antwort- bzw. 
Rufmodems sind. 



6. Verfahr n nach einem der Anspruche 1 bis 5, wobei 
die rsteV rrichtung, falls sie dt erste Anzeige (32) 
innerhalb der Abstimmung n nicht erfaBt. dadurch 
reagiert. daB sie der zweiten Vbrrichtung den Zugriff 

s nur auf nicht b schrankte Daten gewahrt, wenn die 
Datenubertragung (2) beginnt. nachdem die 
Abstimmungen (1) abgeschlossen word en sind. 

7. Kommunikationssytem mit: 

10 

einer ersten Vorrichtung fur die Kontrolie uber 
den Zugriff auf Daten mit Zugangsbeschran- 
kung und mit einer zweiten Vbrrichtung, 
wobei die ersten und zweiten Vorrichtungen 

is jeweils Einrichtungen aufweisen fur das Durch- 

f uhren gemeinsamer Abstimmungen (1), urn 
die technische Kompatibilitat zwischen den 
ersten und zweiten Vorrichtungen fur die 
anschtieBende Datenubertragung (2) sicherzu- 

20 steilen, 

d&durch gekennzoichnet, daB 
die zweite Vorrichtung weiterhin Einrichtungen 
autweist, um in die Abstimmungen (1) eine 
erste Anzeige (32) einzuschlieBen, weiche 

25 anzeigt, daB die zweite Vorrichtung berechtigt 

ist, auf die mit Zugangsbeschrankung versehe- 
nen Daten zuzugreifen, und 
daB die erste Vorrichtung weiterhin Einrichtun- 
gen autweist, um die Abstimmungen (1) zu 

30 uberwachen, um die erste Anzeige (32) zu 

erfassen sowie Einrichtungen aufweist, um auf 
die Erfassung der ersten Anzeige (32) dadurch 
zu reagieren, daB sie der zweiten Vorrichtung 
den Zugriff auf die Daten mit Zugangsbe- 

35 schrankung gewahrt, wenn die Datenubertra- 

gung (2) beginnt, nachdem die Abstimmungen 
(1 ) vollendet worden sind. 

8. Kommunikationssystem nach Anspruch 7, wobei 
40 die erste Vorrichtung weiterhin Einrichtungen auf- 
weist, um in die Abstimmungen (1) eine zweite 
Anzeige (31) einzuschlieBen, und wobei die zweite 
Vorrichtung weiterhin Einrichtungen aufweist, um 
die Abstimmungen (1) zu uberwachen, um die 

45 zweite Anzeige (31 ) zu erfassen, sowie Einrichtun- 
gen aufweist, um die die erste Anzeige enthaltende 
Einrichtung unter Ansprechen auf das Erfassen der 
zweiten Anzeige (31) zu aktivieren. 

so 9. Kommunikationssystem nach Anspruch 7 Oder 8, 
wobei die zweite Vorrichtung weiterhin Einrichtun- 
gen aufweist, um in die Abstimmungen (1) eine 
dritte Anzeige nach der ersten Anzeige (32) einzu- 
schlieBen. 

55 

10. Kommunikationssystem nach Anspruch 9, wobei 
die Einrichtung, weiche die erst Anzeige in- 
schlieBt und die Einrichtung. welch die dritte 
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Anzeige einschlieSt, derart ausgelegt sind, daG die 
erste Anzeig (32) die zweite Vorrichtung ats zu 
einer Gruppa von V rhchtungen zugeh rig identify 
ziert, die eine Zugangsberechtigung zu den Dat n 
mit Zugangsbeschrankung haben und die drrtt 
Anzeige die zweite Vorrichtung genauer als die 
erste Anzeige identifiziert. 

11. Kommunikationssystem nach einem der Anspru- 
che 7 bis 10, wobei die ersten und zweiten vbrrich- 
tungen Antwort- bzw. Rufmodems sind. 

12. Kommunikaationssystem nach einem der Anspru- 
che 7 bis 11, wobei die erste Vorrichtung weiterhin 
eine Einrichtung fur das Reagieren auf das Ausblei- 
ben des Erfassens der ersten Anzeige (32) wah- 
rend der Abstimmungen aulweist, indem sie der 
zweiten Vorrichtung den Zugriff nur auf nicht 
beschrankte Daten gewahrt, wenn die Datenuber- 
tragung (2) nach dem AbschluG der Abstimmungen 
(1) beginnt. 



Rovendications 

1 . Precede pour mettre en etat un premier appareii de 
determiner si oui ou non un second appareii devrait 
avoir faeces autorise a des donnees a acces res- 
treint, ie precede comprenant les operations oil : 

les premier et second appareils effectuent des 
negotiations (1) bilaterales pour assurer une 
compatibilite technique pour ia transmission (2) 
de donnees subsequentes entre eux ; 
caracterise en ce que le precede comprend en 
plus les operations ou : 

le premier appareii contrdle les negeciations (1 ) 
pour detecter si . dans les negeciations, il y a 
une premiere indication (32) provenant du 
second appareii que le premier appareii recon- 
natt comme indiquant que le second appareii 
est autorise a acceder aux donnees a acces 
restreint ; et 

le premier appareii repond ,si il detecte la pre- 
miere indication (32), en permettant au second 
appareii d'avoir acces aux donnees a acces 
restreint lorsque la transmission de donnees 
(2) commence apres que les negeciations (1) 
aient et6 achevees 

2. Precede selon la revendication 1 , comprenant en 
outre les operations ou : 

le premier appareii inclut une seconde indica- 
tion (31 ) dans les negeciations (1 ) ; 
le s cond appareii contrdle les negeciations ( 1 ) 
pour detecter si, dans les negeciations, il y a la 
seconde indication (31 ), et 



le second appareii inclut la premiere indication 
(32) dans les negeciations seulement si le 
deuxieme appar il a deja detecte la seconde 
indication (31) . 

5 

3. Precede selon ta revendication 1 ou la revendica- 
tion 2, comprenant en plus reoperation ou le 
deuxieme appareii inclut une troisieme indication 
dans les negeciations (1 ) apres qu'il ait inclus la pre- 

10 miere indication (32) dans les negeciations. 

4. Precede selon la revendication 3, dans lequel la 
premiere indication (32) identifie le deuxieme appa- 
reii comme appartenant a un groupe d'appareils qui 

J* sont autorises a acceder a des donnees a acces 
restreint et la troisieme indication identifie le second 
appareii plus precisement que la premiere indica- 
tion. 

20 5. Precede selon Tune quelconque des revendications 
1 a 4, dans lequel les premier et second appareils 
sont des modems respectivement de reponse et 
d'appel . 

2S 6. Precede selon Tune quelconque des revendications 
1 a 5, dans lequel le premier appareii repond, si il 
ne detecte pas la premiere indication (32) dans les 
negeciations, en permettant au second appareii 
d'avoir seulement acces a des donnees a acces 

30 libre lorsque la transmission de donnees (2) com- 
mence apres que les negeciations (1) aient ete 
achevees. 



7. Systeme de communication comprenant : 



35 



un premier appareii pour commander faeces a 
des donnees a acces restreint, et un second 
appareii ; 

les premier et second appareils comprennent 
40 des moyens respectifs pour accomplir des 

negeciations bilaterales (1) pour assurer une 
compatibilite technique pour une transmission 
(2) de donnees subsequentes entre les premier 
et second appareils; 
<s caracteris6 en ce que : 

le second appareii comprend en outre un 
moyen pour inclure dans les negeciations (1) 
une premiere indication (32) indiquant que le 
second appareii est autorise a acceder aux 
so donnees a acces restreint, et 

le premier appareii comprend en plus un moyen 
pour contrdler les negeciations (1) afin de 
detecter la premiere indication (32) et un 
moyen pour repondre a la detection de la pre- 
ss miere indication (32) en permettant au second 
appareii d'avoir acces a des donnees a acces 
restreint lorsque la transmission de donnees 
(2) commenc apres que les negeciations (1) 
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aient ete achevees. 

8. Systeme de communication seton la revendication 
7, dans lequel le premier appareil comprend en 
outre un m yen pour incture dans les negociations s 
(1) une seconde indication (31). et le deuxieme 
appareil comprend en plus un moyen pour controler 

les negociations (1 ) afin de detector la seconde indi- 
cation (31) et un moyen pour activer le moyen 
d'inclusion de la premiere indication en rdponse a io 
la detection de la seconde indication (31). 

9. Systeme de communication seton la revendication 
7 ou la revendication 8, dans lequel le second appa- 
reil comprend un moyen pour inciure dans les nego- 

* ciations (1) une troisieme indication apres la pre- 
miere indication (32). 

10. Systeme de communication seton la revendication 

9, dans lequel le moyen d'inclusion de la premiere 20 
indication et le moyen d'inclusion de la troisieme 
indication sont disposes de maniere a ce que la pre- 
miere indication (32) identifie le second appareil 
comme appartenant a un groupe d'appareils qui 
sont autoris6s a acceder a des donnees a acces 
restreint et la troisieme indication identifie le second 
appareil plus precis6ment que ia premiere indica- 
tion. 

11. Systeme de communication seton I'une quelconque 30 
des revendication s 7 a 10, dans lequel les premier 

et second appareils sont des modems respective- 
ment de reponse et d'appel. 

12. Systeme de communication seton Tune quelconque 35 
des revendications 7 a 11, dans lequel le premier 
appareil comprend en outre une moyen pour repon- 
dre a I'absence de detection de la premiere indica- 
tion (32) pendant les negociations en permettant au 
second appareil d'avoir seulement acces a des don- *o 
nees a acces libre lorsque la transmission (2) de 
donnees commence apres que les negociations (1 ) 
aient 6te achevees. 
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